From 46d1c57e7c4287d60c38e5141a553ab8fd9ffdb1 Mon Sep 17 00:00:00 2001
From: Ian Littman <iansltx@gmail.com>
Date: Mon, 23 Jun 2025 09:35:52 -0500
Subject: [PATCH] Don't require CVE-2024-38396 in iTerm2 CVE test to provide
 latitude for NVD flakiness (#30234)

# Checklist for submitter

- [x] Added/updated automated tests
---
 server/vulnerabilities/nvd/cve_test.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/vulnerabilities/nvd/cve_test.go b/server/vulnerabilities/nvd/cve_test.go
index fa5d07aa62..c5d92fe655 100644
--- a/server/vulnerabilities/nvd/cve_test.go
+++ b/server/vulnerabilities/nvd/cve_test.go
@@ -412,7 +412,7 @@ func TestTranslateCPEToCVE(t *testing.T) {
 		"cpe:2.3:a:iterm2:iterm2:3.5.1:*:*:*:*:*:*:*": {
 			includedCVEs: []cve{
 				{ID: "CVE-2024-38395", resolvedInVersion: "3.5.2"},
-				{ID: "CVE-2024-38396", resolvedInVersion: "3.5.2"},
+				// NVD is being flakey so may not show this // {ID: "CVE-2024-38396", resolvedInVersion: "3.5.2"},
 			},
 			continuesToUpdate: true,
 		},